5 replies to this topic

[12rmcmillin]

I'm not trying to make an FMyLife clone or anything like that. I'm just looking at the way it handles text submissions, in the way that a user can submit a bit of text and some or all submitted pieces of text would appear on the same page. FMyLife is simply an example of the method I'm looking at.

Would anybody be able to give me some ideas on what I could do to handle text submissions using this method? Would this be more centered around PHP or MySQL? I know a VERY small amount of PHP - about enough to handle simple text-based forms. If anybody could give me some insight, that would be fantastic. Thank you.(:

EDIT: By the way - I only have one post because my last account was banned for asking almost this exact question. I worded it in a way that made it look like I was trying to simply clone FMyLife. That's absolutely not my intention - I'm ONLY looking at the way they handle text submissions. I can't stress that enough. I don't want to have to make another new account over a misunderstanding. :I

[Vaielab]

Both actually.
PHP will be use to receive the text, and display it
While mysql will be use to store the text

You should read some tutorials (quick search on google with the keyword "php mysql tutorial" will give you a lots of references)

[12rmcmillin]

Vaielab said:

Both actually.
PHP will be use to receive the text, and display it
While mysql will be use to store the text

You should read some tutorials (quick search on google with the keyword "php mysql tutorial" will give you a lots of references)

Fastest reply I've had on any forum, ever.
The only PHP I know involves posting form data to another php page, and displaying it ON that page. So essentially, I could have them submit the form data, but instead of post to a php page, write to the MySQL database, then have the final php page grab the text from the database instead of page-to-page transfer?

[Vaielab]

Yes pretty much.
But you will have to be carefull for sql injection too if you don't want your website to be hacked

[12rmcmillin]

Vaielab said:

Yes pretty much.
But you will have to be carefull for sql injection too if you don't want your website to be hacked

I'm not sure what there is to be hacked. The MySQL database?

[Vaielab]

The mysqldatabase is one of the possibility.
But the user that come on your website is a other one.

If you don't protect against sql injection, a user could delete your database, or modify it, or fetch data (like admin password).
And if you don't protect against other type of injection (html injection, xss...) a user that come visit your website could be redirected to a other website without him knowing. Or ask to download some software to be able to view your site... or pretty much anything.

To protect your website is one of the hardest thing to do. And because of that, lots of people leave website unsecure, even if they say they are expert and know everything.
Your user trust you, if your website tell them to do something, they probably will. So it's your responsability to protect your website.